Introduction
This document describes what to use for fail-over monitoring on site-to-site VPN for Secure Access.
Problem
The lack of effective monitoring can lead to significant operational disruptions. A gap in network monitoring can hinder an organizations interoperability and can result in the loss of the image of an organization or financial loss that can impact the business continuity of an organization.
Also, the absence of failover mechanisms results in these issues without an automated response to redirect traffic when a VPN tunnel fails, either due to the failure of the provider or other causes related to internet traffic.
Solution
To address this issue, you can monitor an IP or domain that can help you identify a failure on the network when a VPN is established to Secure Access to know when you are having connection issues from one of the tunnels.
You can use this domain or IP to monitor the communication to Secure Access:
- service.sig.umbrella.com port 80
- 146.112.255.40 port 80
For more information, please check Monitor Network Tunnel Status
Note: This domain and IP respond only to the devices behind Secure Access. ICMP is not supported.
Related Information